If Google Is Online Advertising, Why Does Malvertising Thrive?
March 14, 2023
I think this question struck me after reading a few paragraphs of “Malvertising on Google Ads: It’s Hiding in Plain Site.” The essay is designed to cause a reader to embrace the commerce malware service provided by Kolide. How do I know? Here’s the statement that tipped me off:
Want to see how Kolide can get your entire fleet updated, patched and compliant? Watch Kolide’s on-demand demo today.
Despite the content marketing sway in the article, I noted an interesting comment about Google. After citing a Googley statement about the online ad giant’s good intentions and methods for dealing with malware, the write up says:
Unfortunately, the search engine does not provide a definition nor examples of what falls under “egregious violations.” And given how easy it is for bad actors to simply make a new account when a new one is shut down, this approach doesn’t meet the requirements for reliability or scalability. Still, when you look at things from Google’s perspective, these policies make sense.
In my opinion, Google happily delivers malvertising because Google sells advertising. The company does not want to harm its revenue. Just as the pop ads running on top of YouTube videos, Google is not losing revenue. The company says, “No more overlays in a few months.” Why? Is it because Google will introduce Amazon-Twitch style unskippable ads, insert more unskippable commercials in videos, and add more end-of-video ads? Absolutely. Google is not going to give up revenue in my opinion.
Shifting the responsibility for identifying and remediating issues with Google ad-delivered malware is good for cyber security companies and super good for Google. My view is that we have one more example of specious behavior from a company unable to get its ethical compass focused on any direction but its revenue.
Stephen E Arnold, March 13, 2023
Comments
-
- Subscribe to Beyond Search
Feature archive
News archive
-
